12-20-2007 07:24 PM - edited 02-20-2020 09:39 PM
Hello Experts,
Easy question
router fa0/0 (outside interface)- address obtained by DHCP from ISP
I need to know how I can create an acl in the outside int of the router that allows me to BLOCK all other traffic but to allow my router to continue accepting the ip address by DHCP.
Will this rule work?
ip access-l ext outside
permit tcp any int fa0/0 eq 68
permit udp any int fa0/0 eq 68
permit tcp any int fa0/0 eq 67
permit udp any int fa0/0 eq 67
int fa0/0
access-g outside in
Or should I configure something else?
Thanks for any advice.
Randall
Please help
12-21-2007 08:30 AM
I hope somebody can help me.
thx
12-31-2007 11:22 AM
Only for DHCP it works ( I have not tested though), but you might need to open for DNS also.
hth
MS
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide